[KLUG Members] Dynamic DNS

[Bruce Smith]

> I've set up a dynamic dns for doing some light webserving from home.  I 
> know that putting a machine in a dmz is the best option security-wise, 
> but how much trouble am I asking for by port forwarding to the websever 
> within my network.  

Depends on how secure your web applications are.  i.e. If you write
insecure PHP/PERL/CGI/... code, then you may have a problem.

> I'm not using port 80 for this.  

That's a very good thing.
It'll make it difficult to find by the casual hacker.

> And the only port 
> allowed get thru the router is the alternate port I have set for webserver.

I also run a limited web server at home, but I limit the source IP that
can access it to my work computer's IP.

If I want to access my web server from some other remote location, I SSH
into my home box and use SSH forwarding to forward a local connection to
the web server.

You could also put Apache authentication on your web site (popup login).

Those ideas may or may not work for you, depending on your application.

 - BS